The host is installed with Apple QuickTime before 7.5.5 and is prone to a heap corruption vulnerability. A flaw is present in the application, which fails to handle a crafted H.264 encoded movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the service.